| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | pgsql-committers(at)postgresql(dot)org |
| Subject: | pgsql: Add parameters for controlling locations of server-side SSL file |
| Date: | 2012-02-22 21:46:00 |
| Message-ID: | E1S0K0e-0002sR-K2@gemulon.postgresql.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Add parameters for controlling locations of server-side SSL files
This allows changing the location of the files that were previously
hard-coded to server.crt, server.key, root.crt, root.crl.
server.crt and server.key continue to be the default settings and are
thus required to be present by default if SSL is enabled. But the
settings for the server-side CA and CRL are now empty by default, and
if they are set, the files are required to be present. This replaces
the previous behavior of ignoring the functionality if the files were
not found.
Branch
------
master
Details
-------
http://git.postgresql.org/pg/commitdiff/a445cb92ef5b3a31313ebce30e18cc1d6e0bdecb
Modified Files
--------------
doc/src/sgml/config.sgml | 64 +++++++++++++++
doc/src/sgml/runtime.sgml | 36 +++++----
src/backend/libpq/be-secure.c | 109 ++++++++++---------------
src/backend/libpq/hba.c | 2 +-
src/backend/utils/misc/guc.c | 41 +++++++++
src/backend/utils/misc/postgresql.conf.sample | 4 +
src/include/libpq/libpq.h | 5 +
7 files changed, 180 insertions(+), 81 deletions(-)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2012-02-22 23:12:51 | pgsql: Draft release notes for 9.1.3, 9.0.7, 8.4.11, 8.3.18. |
| Previous Message | Alvaro Herrera | 2012-02-22 20:34:26 | pgsql: REASSIGN OWNED: Support foreign data wrappers and servers |