| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> |
| Cc: | Michael Paquier <michael(at)paquier(dot)xyz>, Andres Freund <andres(at)anarazel(dot)de>, Pgsql Hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: Serverside SNI support in libpq |
| Date: | 2025-11-24 14:53:31 |
| Message-ID: | 0C53C316-C24E-4307-807B-D825CA3F7254@yesql.se |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> On 12 Nov 2025, at 23:44, Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> wrote:
> Did you have any thoughts on my earlier review [2]? The test patch
> attached there still fails on my machine with v9.
The attached incorporates your tests, fixes them to make them pass. The
culprit seemed to be a combination of a bug in the code (the verify callback
need to be defined in the default context even if there is no CA for it to be
called in an SNI setting because OpenSSL), and that the tests were matching
backend errors against frontend messages.
The other comments from your review are also addressed, as well as additional
cleanup and improved error handling.
--
Daniel Gustafsson
| Attachment | Content-Type | Size |
|---|---|---|
| v10-0001-Serverside-SNI-support-for-libpq.patch | application/octet-stream | 60.5 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bertrand Drouvot | 2025-11-24 14:54:01 | Re: get rid of Pointer type, mostly |
| Previous Message | Peter Eisentraut | 2025-11-24 14:45:48 | Re: refactor AlterDomainAddConstraint (alter domain add constraint) |