old-bear commented on issue #968: https开启双向认证后,SSL Renegotiation功能失效 URL: https://github.com/apache/incubator-brpc/issues/968#issuecomment-554260202 由于之前一些SSL版本过低,renegotiation会引发安全问题,所以代码这里把这个关了 https://github.com/apache/incubator-brpc/blob/6efb0cff5f30f32437c660cef01c93549cf62679/src/brpc/details/ssl_helper.cpp#L140 你看下你的log中,是否有上面日志里的这句话 Close xxx due to insecure renegotiation detected (CVE-2009-3555)
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
