Home > mailing lists

Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?) - Mailing list pgsql-hackers

From	Andres Freund
Subject	Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?)
Date	July 28, 2015 19:59:07
Msg-id	20150728165902.GB4726@alap3.anarazel.de Whole thread Raw
In response to	Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?) (Michael Paquier <michael.paquier@gmail.com>)
Responses	Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?) (Andres Freund <andres@anarazel.de>) Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?) (Andres Freund <andres@anarazel.de>)
List	pgsql-hackers

Tree view

Hi,

Attached are:

a) a slightly evolved version of Michael's patch disabling renegotiation  by default that I'm planning to apply to 9.4
-9.0
 

b) a patch removing renegotiation entirely from master and 9.5

Unless somebody protests soon I'm going to push something like that
after having dinner.

I am wondering whether b) ought to remove Port->count, but I'm currently
leaning to leaving it in place for now; perhaps adding a comment in the
struct.  I'm actually thinking we very well might want to add something
like it to all backends, but more importantly it'd make the diff larger
with mostly unrelated changes.

Regards,

Andres

pgsql-hackers by date:

From: Andrew Dunstan
Date: 28 July 2015, 19:46:48
Subject: Re: proposal: multiple psql option -c

From: Andres Freund
Date: 28 July 2015, 20:00:08
Subject: Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?)

Re: Re: Removing SSL renegotiation (Was: Should we back-patch SSL renegotiation fixes?) - Mailing list pgsql-hackers

Previous

Next