Home > mailing lists

Re: Recent vendor SSL renegotiation patches break PostgreSQL - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Recent vendor SSL renegotiation patches break PostgreSQL
Date	February 3, 2010 15:59:01
Msg-id	22255.1265216316@sss.pgh.pa.us Whole thread Raw
In response to	Re: Recent vendor SSL renegotiation patches break PostgreSQL (Chris Campbell <chris_campbell@mac.com>)
Responses	Re: Recent vendor SSL renegotiation patches break PostgreSQL (Bruce Momjian <bruce@momjian.us>) Re: Recent vendor SSL renegotiation patches break PostgreSQL (Bruce Momjian <bruce@momjian.us>)
List	pgsql-hackers

Tree view

Chris Campbell <chris_campbell@mac.com> writes:
> Is there a way to detect when the SSL library has renegotiation disabled?

Probably not.  The current set of emergency security patches would
certainly not have exposed any new API that would help us tell this :-(

If said patches were done properly they'd have also turned an
application-level renegotiation request into a no-op, instead of
breaking apps by making it fail --- but apparently they were not done
properly.
        regards, tom lane

pgsql-hackers by date:

From: Michael Ledford
Date: 03 February 2010, 15:53:47
Subject: Re: Recent vendor SSL renegotiation patches break PostgreSQL

From: Robert Haas
Date: 03 February 2010, 16:04:19
Subject: Re: Recent vendor SSL renegotiation patches break PostgreSQL

Re: Recent vendor SSL renegotiation patches break PostgreSQL - Mailing list pgsql-hackers

Previous

Next