Home > mailing lists

Re: Add support to TLS 1.3 cipher suites and curves lists - Mailing list pgsql-hackers

From	Jacob Champion
Subject	Re: Add support to TLS 1.3 cipher suites and curves lists
Date	July 22 20:54:43
Msg-id	CAOYmi+=H9Nfn+SRVR-1hZvo1m9YL-hNCufSvSESLXXmP7TfOwQ@mail.gmail.com Whole thread Raw
In response to	Re: Add support to TLS 1.3 cipher suites and curves lists (Daniel Gustafsson <daniel@yesql.se>)
List	pgsql-hackers

Tree view

On Wed, Jul 3, 2024 at 9:20 AM Daniel Gustafsson <daniel@yesql.se> wrote:
> It's essentially just polish and adding comments with the functional
> changes that a) it parses the entire list of curves so all errors can be
> reported instead of giving up at the first error; b) leaving the cipher suite
> GUC blank will set the suites to the OpenSSL default vale.

Is there an advantage to setting it to a compile-time default, as
opposed to just leaving it alone and not setting it at all? With the
current patch, if you dropped in a more advanced OpenSSL 3.x that
changed up the defaults, you wouldn't see any benefit.

Thanks,
--Jacob

pgsql-hackers by date:

From: Isaac Morland
Date: 22 July, 20:54:21
Subject: Re: [18] Policy on IMMUTABLE functions and Unicode updates

From: Robert Haas
Date: 22 July, 20:55:47
Subject: Re: [18] Policy on IMMUTABLE functions and Unicode updates

Re: Add support to TLS 1.3 cipher suites and curves lists - Mailing list pgsql-hackers

Previous

Next