Re: Is it worth accepting multiple CRLs? - Mailing list pgsql-hackers

From Henry B Hotz
Subject Re: Is it worth accepting multiple CRLs?
Date
Msg-id 878E8D30-0D11-4511-B8DA-348CA5E4E0E0@oxy.edu
Whole thread Raw
In response to Is it worth accepting multiple CRLs?  (Kyotaro Horiguchi <horikyota.ntt@gmail.com>)
Responses Re: Is it worth accepting multiple CRLs?
List pgsql-hackers
A CA may issue a CRL infrequently, but issue a delta-CRL frequently. Does the logic support this properly?

Personal email. hbhotz@oxy.edu

> On Jul 31, 2020, at 1:39 AM, Kyotaro Horiguchi <horikyota.ntt@gmail.com> wrote:
>
> Hello.
>
> PostgreSQL server accepts only one CRL file. It is easy to expand
> be_tls_init to accept a directory set in ssl_crl_file. But I'm not
> sure CRL is actually even utilized in the field so that could ends
> with just bloating the documentation.
>
> Is it work doing?
>
> regards.
>
> --
> Kyotaro Horiguchi
> NTT Open Source Software Center
>
>




pgsql-hackers by date:

Previous
From: Ashutosh Sharma
Date:
Subject: Re: recovering from "found xmin ... from before relfrozenxid ..."
Next
From: Stephen Frost
Date:
Subject: Re: Is it worth accepting multiple CRLs?