The version of nginx that ships with Bullseye does not support the $ssl_ecdhe_curve directive.
As the Swift team did, we need to update our puppet code to disable this directive on Bullseye hosts.
The version of nginx that ships with Bullseye does not support the $ssl_ecdhe_curve directive.
As the Swift team did, we need to update our puppet code to disable this directive on Bullseye hosts.
Change 788815 had a related patch set uploaded (by Bking; author: Bking):
[operations/puppet@production] elastic: enable/disable ssl_ecdhe_curve based on OS version
Change 789559 had a related patch set uploaded (by Gehel; author: Gehel):
[operations/puppet@production] tlsproxy: manage ssl_ecdhe_curve internally
Change 788815 merged by Bking:
[operations/puppet@production] elastic: enable/disable ssl_ecdhe_curve based on OS version
Change 789559 abandoned by Gehel:
[operations/puppet@production] tlsproxy: manage ssl_ecdhe_curve internally
Reason:
we don't support stretch anymore