Quick Links

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Craig Ringer <craig(at)postnewspapers(dot)com(dot)au>
Cc:	pgsql-bugs <pgsql-bugs(at)postgresql(dot)org>
Subject:	Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request
Date:	2010-05-23 16:58:07
Message-ID:	17253.1274633887@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-bugs

Craig Ringer <craig(at)postnewspapers(dot)com(dot)au> writes:
> + SSL_CTX_set_client_CA_list( SSL_context, SSL_load_client_CA_file(ROOT_CERT_FILE) );

Hmm, what about failures? If we're loading the root cert file a second
time, it's possible that the user just changed it and the load now fails
for some reason.

regards, tom lane

In response to

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request at 2010-05-22 14:50:03 from Craig Ringer

Responses

Re: BUG #5468: Pg doesn't send accepted root CA list to client during SSL client cert request at 2010-05-24 00:12:33 from Craig Ringer

Browse pgsql-bugs by date

	From	Date	Subject
Next Message	Tom Lane	2010-05-23 18:38:53	Re: psql or pgbouncer bug?
Previous Message	Joshua Tolley	2010-05-23 00:09:36	Re: psql or pgbouncer bug?