Thank you.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,287429,287435#msg-287435
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
> On 23 Mar 2020, at 16:30, q1548 wrote:
>
> I use openssl 1.1.1d, SSL_read() failed in error log.
> not often, a few, but what does this mean, thanks.
>
> [crit] ... SSL_read() failed (SSL: error:14191044:SSL
> routines:tls1_enc:internal error) while processing HTTP/2 connection
> [crit] ...
I use openssl 1.1.1d, SSL_read() failed in error log.
not often, a few, but what does this mean, thanks.
[crit] ... SSL_read() failed (SSL: error:14191044:SSL
routines:tls1_enc:internal error) while processing HTTP/2 connection
[crit] ... SSL_read() failed (SSL: error:14191044:SSL
routines:tls1_en
Hello!
On Mon, Mar 23, 2020 at 02:04:36PM +0300, Sergey Kandaurov wrote:
>
> > On 22 Mar 2020, at 21:39, itpp2012 wrote:
> >
> > How about this as this catches all 3 while conditions:
> >
> > +++ src/event/ngx_event_openssl.c
> > @@ -2318,
> >
> >c->ssl->no_wait_shutdown = 1;
> >c->s
It doesn't and there are a few more for which this doesn't work either, it
needs a lot more work and testing.
I had a new concept patch but today decided to roll back to 1.1.1d and back
port 1.1.1e (de) patches only.
Only NGX_ERROR mitigates a truncation attack, not NGX_DONE (which is open
for deba
> On 22 Mar 2020, at 21:39, itpp2012 wrote:
>
> How about this as this catches all 3 while conditions:
>
> +++ src/event/ngx_event_openssl.c
> @@ -2318,
>
>c->ssl->no_wait_shutdown = 1;
>c->ssl->no_send_shutdown = 1;
>
>if (sslerr == SSL_ERROR_ZERO_RETURN || ERR_peek_error() == 0
Hi,
I´m running nginx/1.17.8 as a ReverseProxy, executed as Docker container via
docker-compose.yaml.
version: '2'
services:
proxy:
image: nginx:1.17
container_name: nginx
restart: always
ports:
- "443:8443"
- "80:8080"
volumes:
- /data/nginx-conf:/etc/nginx/conf.d/
networks:
- webgateway
ne
