# HG changeset patch
# User Kim Alvefur <zash@zash.se>
# Date 1482130221 -3600
# Node ID 27ffa6521d4e8b983997166d225d237a559d54e7
# Parent  1b6027ef5191edf0f672623603bcdbbe2cc6436f
mod_s2s_keysize_policy: Lower log message to a warning since it is not really a fatal error

diff -r 1b6027ef5191 -r 27ffa6521d4e mod_s2s_keysize_policy/mod_s2s_keysize_policy.lua
--- a/mod_s2s_keysize_policy/mod_s2s_keysize_policy.lua	Mon Dec 19 07:49:40 2016 +0100
+++ b/mod_s2s_keysize_policy/mod_s2s_keysize_policy.lua	Mon Dec 19 07:50:21 2016 +0100
@@ -28,7 +28,7 @@
 		if key_size < ( weak_key_size[key_type] or 0 ) then
 			local issued = parse_x509_datetime(cert:notbefore());
 			if issued > weak_key_cutoff then
-				session.log("error", "%s has a %s-bit %s key issued after 31 December 2013, invalidating trust!", host, key_size, key_type);
+				session.log("warn", "%s has a %s-bit %s key issued after 31 December 2013, invalidating trust!", host, key_size, key_type);
 				session.cert_chain_status = "invalid";
 				session.cert_identity_status = "invalid";
 			else