Home > mailing lists

Re: Re: [COMMITTERS] pgsql: Add support for matching wildcard server certificates to the new - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: Re: [COMMITTERS] pgsql: Add support for matching wildcard server certificates to the new
Date	December 1, 2008 14:39:02
Msg-id	603c8f070812010738k57b6051fr9a333737122e20c7@mail.gmail.com Whole thread Raw
In response to	Re: Re: [COMMITTERS] pgsql: Add support for matching wildcard server certificates to the new (Magnus Hagander <magnus@hagander.net>)
Responses	Re: Re: [COMMITTERS] pgsql: Add support for matching wildcard server certificates to the new (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

Looks good to me, except for a somewhat excessive number of calls to
strlen() on the same input data.

...Robert

On Mon, Dec 1, 2008 at 10:31 AM, Magnus Hagander <magnus@hagander.net> wrote:
> Magnus Hagander wrote:
>> I think I agree with the idea that we should match wildcards only at the
>> beginning of the name *for now*, and then see what people actually
>> request :-) I'm less sure about the single-pathname-component part, but
>> the argument around backwards compatible is certainly a very valid one..
>
> Here's one that (I think) does that. For every step, the code becomes
> simpler - which I like when it comes to security code :)
>
> //Magnus
>
>

pgsql-hackers by date:

From: "Robert Haas"
Date: 01 December 2008, 14:34:58
Subject: Re: Re: [COMMITTERS] pgsql: Add support for matching wildcard server certificates to the new

From: "Greg Stark"
Date: 01 December 2008, 14:39:05
Subject: Re: New to_timestamp implementation is pretty strict

Re: Re: [COMMITTERS] pgsql: Add support for matching wildcard server certificates to the new - Mailing list pgsql-hackers

Previous

Next