Home > mailing lists

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request - Mailing list pgsql-bugs

From	Craig Ringer
Subject	Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request
Date	May 27, 2010 02:55:26
Msg-id	4BFDDF0D.2010806@postnewspapers.com.au Whole thread Raw
In response to	Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

On 27/05/10 10:05, Tom Lane wrote:
> Craig Ringer<craig@postnewspapers.com.au>  writes:
>> See the self-contained test case here:
>>    http://www.postnewspapers.com.au/~craig/testcase.zip
>
> Thanks for posting that; it makes it a lot easier to experiment with the
> behavior of the Java software stack.
>
> I've applied your patch along with some hacking on libpq.  As far as
> I can tell, things now work nicely with chained certificates on either
> end, but it could definitely do with more testing if you have time to
> poke at CVS HEAD.

Thanks for that.  I'll pull git, rebuild and re-test.

Handily this has got me running on HEAD builds for my testing/dev, so
I'll be able to set up with SR/HS and integrate that into my regular app
testing and development.

Sorry for getting grumpy, BTW. I was having a hard time explaining what
I was on about.

--
Craig Ringer

pgsql-bugs by date:

From: Tom Lane
Date: 27 May 2010, 02:05:15
Subject: Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request

From: Craig Ringer
Date: 27 May 2010, 02:56:54
Subject: Re: BUG #5245: Full Server Certificate Chain Not Sent to client

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request - Mailing list pgsql-bugs

Previous

Next