AlinsRan commented on code in PR #11305:
URL: https://github.com/apache/apisix/pull/11305#discussion_r1623698361
##########
apisix/ssl.lua:
##########
@@ -153,6 +159,9 @@ local function aes_decrypt_pkey(origin, field)
for _, aes_128_cbc_with_iv in ipairs(aes_128_cbc_with_iv_tbl) do
local decrypted = aes_128_cbc_with_iv:decrypt(decoded_key)
if decrypted then
Review Comment:
Agree.
> Can you confirm this? can it work properly?
Before performing a TLS handshake, nginx will clear the error queue of
OpenSSL. It needs to ensure that the error is indeed generated during the TLS
handshake, in order to reject the request and not be affected by other
unexpected errors
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscr...@apisix.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
