Re: Experiments with Postgres and SSL - Mailing list pgsql-hackers

From Andrey Borodin
Subject Re: Experiments with Postgres and SSL
Date
Msg-id CAAhFRxhS7vi-HPNkDyvOGCqnx6SX2s4n-hPcOddXN5+Fpw94wA@mail.gmail.com
Whole thread Raw
In response to Experiments with Postgres and SSL  (Greg Stark <stark@mit.edu>)
Responses Re: Experiments with Postgres and SSL
List pgsql-hackers
On Wed, Jan 18, 2023 at 7:16 PM Greg Stark <stark@mit.edu> wrote:
>
> So I took a look into what it would take to do and I think it would
> actually be quite feasible. The first byte of a standard TLS
> connection can't look anything like the first byte of any flavour of
> Postgres startup packet because it would be the high order bits of the
> length so unless we start having multi-megabyte startup packets....
>

This is a fascinating idea! I like it a lot.
But..do we have to treat any unknown start sequence of bytes as a TLS
connection? Or is there some definite subset of possible first bytes
that clearly indicates that this is a TLS connection or not?

Best regards, Andrey Borodin.



pgsql-hackers by date:

Previous
From: Amit Kapila
Date:
Subject: Re: Perform streaming logical transactions by background workers and parallel apply
Next
From: Justin Pryzby
Date:
Subject: bug: copy progress reporting of backends which run multiple COPYs