Home > mailing lists

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request
Date	May 23, 2010 16:58:17
Msg-id	17253.1274633887@sss.pgh.pa.us Whole thread Raw
In response to	Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request (Craig Ringer <craig@postnewspapers.com.au>)
Responses	Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request (Craig Ringer <craig@postnewspapers.com.au>)
List	pgsql-bugs

Tree view

Craig Ringer <craig@postnewspapers.com.au> writes:
> +         SSL_CTX_set_client_CA_list( SSL_context, SSL_load_client_CA_file(ROOT_CERT_FILE) );

Hmm, what about failures?  If we're loading the root cert file a second
time, it's possible that the user just changed it and the load now fails
for some reason.

            regards, tom lane

pgsql-bugs by date:

From: Tom Molesworth
Date: 23 May 2010, 00:33:30
Subject: Re: psql or pgbouncer bug?

From: Tom Lane
Date: 23 May 2010, 18:39:06
Subject: Re: psql or pgbouncer bug?

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request - Mailing list pgsql-bugs

Previous

Next