[PATCH 0 of 4] logging levels of SSL errors observed with tlsfuzzer

Maxim Dounin mdounin at mdounin.ru
Wed Mar 1 14:56:01 UTC 2023


Hello!

The following patch series adjusts logging levels of various client-related
errors observed with tlsfuzzer with different SSL libraries.  In particular,
tests were done with TLSv1.3 enabled where possible.

Note that it doesn't try to quench all the errors observed, but only ones
which clearly indicate misbehaving client.  Errors which might indicate
issues in the library instead are preserved as is.  For example, logging
level of the ERR_R_INTERNAL_ERROR and ERR_R_EC_LIB errors, which are also
reported during tlsfuzzer runs with OpenSSL 3.0.8, are preserved as is.
It's up to the library authors to either fix these, or return some better
errors instead.

Review and testing appreciated.

-- 
Maxim Dounin


More information about the nginx-devel mailing list