Skip site navigation (1) Skip section navigation (2)

Re: BUG #5008: Server Startup Problem - When server is configured for SSL

From: Magnus Hagander <magnus(at)hagander(dot)net>
To: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
Cc: Jalaj Negi <jalajsinghnegi(at)gmail(dot)com>, pgsql-bugs(at)postgresql(dot)org
Subject: Re: BUG #5008: Server Startup Problem - When server is configured for SSL
Date: 2009-08-26 13:46:40
Message-ID: 9837222c0908260646o50a66076h35a36faaea9165e@mail.gmail.com (view raw or flat)
Thread:
Lists: pgsql-bugs
On Wed, Aug 26, 2009 at 15:30, Tom Lane<tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
> Magnus Hagander <magnus(at)hagander(dot)net> writes:
>> I think this indicates that pg_ctl is trying to connect to the
>> database just to see if it's running, but you have set it to require
>> SSL certificate on connections from localhost. Could that be so? If
>> so, try setting the requirement for certificates only on non-localhost
>> addresses and see if it starts up properly in that case.
>
> Hmm, seems like we should modify pg_ctl's probe code to set
> sslmode = disable.  Letting that default just provides an additional
> way to fail ...

Um. If we modify it, it should be to sslmode=allow. Not "disable".
(*ahem* to what would be a reasonable defualt for libpq in general :P)

But that will still fail if the user has set it up to require a client
certificate.


-- 
 Magnus Hagander
 Me: http://www.hagander.net/
 Work: http://www.redpill-linpro.com/

In response to

Responses

pgsql-bugs by date

Next:From: Tom LaneDate: 2009-08-26 13:57:33
Subject: Re: BUG #5008: Server Startup Problem - When server is configured for SSL
Previous:From: Tom LaneDate: 2009-08-26 13:36:21
Subject: Re: BUG #5011: Standby recovery unable to follow timeline change

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group