This is an automated email from the ASF dual-hosted git repository.
bennoe pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/mesos.git
The following commit(s) were added to refs/heads/master by this push:
new f0d7759 Improved log messages for SSL configuration.
f0d7759 is described below
commit f0d7759c7a3cf72ff89055bee35daf53c6630eaf
Author: Benno Evers <[email protected]>
AuthorDate: Tue May 21 16:30:36 2019 +0200
Improved log messages for SSL configuration.
Review: https://reviews.apache.org/r/70689
---
3rdparty/libprocess/src/openssl.cpp | 13 +++++++------
1 file changed, 7 insertions(+), 6 deletions(-)
diff --git a/3rdparty/libprocess/src/openssl.cpp
b/3rdparty/libprocess/src/openssl.cpp
index 789bef6..e7dbd67 100644
--- a/3rdparty/libprocess/src/openssl.cpp
+++ b/3rdparty/libprocess/src/openssl.cpp
@@ -515,16 +515,17 @@ void reinitialize()
<< "Set CA directory path with LIBPROCESS_SSL_CA_DIR=<dirpath>";
}
- if (!ssl_flags->verify_cert) {
- LOG(INFO) << "Will not verify peer certificate!\n"
- << "NOTE: Set LIBPROCESS_SSL_VERIFY_CERT=1 to enable "
- << "peer certificate verification";
- }
- if (!ssl_flags->require_cert) {
+ if (ssl_flags->require_cert) {
+ LOG(INFO) << "Will require peer certificates for all TLS connections.";
+ } else if (ssl_flags->verify_cert) {
LOG(INFO) << "Will only verify peer certificate if presented!\n"
<< "NOTE: Set LIBPROCESS_SSL_REQUIRE_CERT=1 to require "
<< "peer certificate verification";
+ } else {
+ LOG(INFO) << "Will not verify peer certificate!\n"
+ << "NOTE: Set LIBPROCESS_SSL_VERIFY_CERT=1 to enable "
+ << "peer certificate verification";
}
if (ssl_flags->verify_ipadd) {
